Transcript CONNECT 2.2 Windows Install Webinar

CONNECT:
Release 2.2 Windows Install Webinar
November 11, 2009
Copyright 2009. All Rights Reserved.
CONNECT 2.2 Windows Installation
Melissa Crenshaw, Rex Robinson
2
Copyright 2009. All Rights Reserved.
Windows Install Outline
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Overview and Assumptions
Manuals
Extract files from zips
Install Java SE Development Kit
Install of GlassFishESB and Netbeans libs
Install of Metro and GF certificates
Domain.xml updates
Install Third Party Components into Glassfish\LIB
Starting and Stopping GlassFish
Install MYSQL
Create NHIN CONNECT Database Schemas and Tables
Install SoapUI
Compiling NHIN CONNECT Source
Updates to the property/Configuration File Settings
Deploying the NHIN Components
Windows Install Testing Outline
• Validate Services
• Internal Self Tests
• Outbound Self Tests
• Universal Client
Overview and Assumptions
Overview
The following webinar describes the single
Gateway/Adapter installation of CONNECT 2.2 on a
Windows platform. The install shows the deployment of
components via the deployment script. The install is tested
with the following tests.
•
•
•
•
Validate Services
Inbound-Self-Test
Outbound-Self-Test
Universal Client
5
Copyright 2009. All Rights Reserved.
Overview and Assumptions
Assumptions
• You have acquired a machine that meets the Hardware
Requirements defined in section 4.0 of the Source Code
Installation Manual
• You have admin privileges on this machine
• You have downloaded the required files and install
manuals per the installation instructions
6
Copyright 2009. All Rights Reserved.
Things to Remember
• When creating and updating environment variables You’ll need to close all command windows and reopen a
command window to see a new environment variable
• When copying command from the pfd document, be
careful copying the ‘-’. Note that some word processors
use a different non-standard character for a ‘-‘. Use
caution when copying and pasting this command from the
document. It may have an incorrect ‘-‘ character which will
cause the command to fail.
• We will point out areas in the install process where this
might occur
Manuals
• To install the connect 2.2 source install you’ll need to
download the following Installation Manuals.
– Source Code Installation
• CONNECT Source Code Installation and Configuration Manual
• Latest download is Version 3.1, 27 October 2009
– Full Binary Installation
•
CONNECT System Installation and Configuration Full Binary Manual
• Latest download is Version 3.1, 27 October 2009
– Download Link
• http://www.connectopensource.org/display/NHINR22/Installation+and+Configuration+M
anuals
– We will follow the Source Code Installation but will reference the Full Binary
Installation section “7.0 SSL CERTIFICATE REQUEST AND INSTALLATION
PROCESS”
8
Copyright 2009. All Rights Reserved.
Downloads
• Download the NHIN CONNECT Source Code from the NHIN
CONNECT
– http://www.connectopensource.org/display/NHINR22/Source+Code+Install+Downlo
ad
• NHIN_Connect_Source_2.2.0.293.zip
• Download Third Party Tools and Third Party Components
– http://www.connectopensource.org/display/NHINR22/Third+Party+Downlo
ad
• NHIN_Connect_Third_Party_Tools_2.2.zip
• NHIN_Connect_Third_Party_Components_2.2.0.293.zip
Source Code Installation Manual: Section: 5.0 OBTAIN MEDIA/ SOFTWARE
9
Copyright 2009. All Rights Reserved.
Extract Zip Files
• Extract the contents of the NHIN CONNECT Source
Code to the C: directory
– Note: this will create a directory with a starting path of
“C:\projects\NHINC…”
• Extract the contents of the following zips to the C:
directory
– NHIN_Connect_Third_Party_Tools_2.2.zip
– NHIN_Connect_Third_Party_Components_2.2.0.293.zip
10
Source Code Installation Manual: 6.1 Unzip the NHIN CONNECT Gateway File
Copyright 2009. All Rights Reserved.
Install the Java SE Development
Kit
• Download Java JDK 1.6 update 13
– http://java.sun.com/products/archive/j2se/6u13/
• Install to C:\Java
– Change the default path of the java installation to C:\Java\jdk1.6.0_13
– Change the default path of the JRE to C:\Java\jre6
• Show install of JDK 1.6 update 13 video
Source Code Installation Manual: 6.2.1 Install Java SE Development Kit
11
Copyright 2009. All Rights Reserved.
Create and Update Java SDK System
Environment Variables
• Create system environment
variable:
– JAVA_HOME=C:\Java\jdk1.6.0_13
• Update the System environment
variable: PATH
– prefix %JAVA_HOME%\bin
12
Source Code Installation Manual: 6.2.1 Install Java SE Development Kit
Copyright 2009. All Rights Reserved.
Install GlassFishESB
• Run the GlassFishESB installation
– C:\NHINC\ThirdPartyTools\GlassFishESB\ glassfishesb-v2.1fullinstallerwindows.exe
• Accept the License Agreement
– During the Glassfish install make sure to change the default installation
paths for the Netbeans and the Glassfish directory to remove the V2.1
• From C:\GlassFishESBV2.1 to C:\GlassFishESB
• Verify the install uses the following path for Java C:\Java\jdk1.6.0_13
Source Code Installation Manual: 6.2.2 Install GlassFishESB
13
Copyright 2009. All Rights Reserved.
Create and Update GlassFishESB
System Environment Variables
• Create system environment variables:
– ANT_OPTS=-Xmx1024m -XX:MaxPermSize=512m
"-Dcom.sun.aas.instanceName=server"
– AS_HOME=C:\GlassFishESB\glassfish
– ANT_HOME=C:\GlassFishESB\netbeans\java2\ant
– NHINC_PROPERTIES_DIR=C:\projects\NHINC\Cur
rent\Product\Production\Common\Properties
• Update the System environment
variable: PATH
– prefix %ANT_HOME%\bin
• Show install of GlassfishESB video
14
Source Code Installation Manual: 6.2.2 Install GlassFishESB
Copyright 2009. All Rights Reserved.
Update Netbeans Ant with Additional
Libraries
• Copy all files from C:\NHINC\ThirdPartyTools\AntExtraLibsTo
C:\GlassFishESB\netbeans\java2\ant\lib.
Source Code Installation Manual: 6.2.3 Update Netbeans Ant with Additional Libraries
15
Copyright 2009. All Rights Reserved.
Install Metro 1.4
• Change directories to the Metro Third Party directory and
enter the command to extract Metro1.4
– cd c:\NHINC\ThirdPartyTools\Metro1.4
• Enter the following command
– Java -jar metro-1_4-installernightly_02_05_09.jar
– Accept the license agreement
• Change directories into Metro
– cd metro
• Run the Metro install
– ant -f metro-on-glassfish.xml install
Source Code Installation Manual: 6.2.4 Install Metro 1.4
16
Copyright 2009. All Rights Reserved.
Setup Development Glassfish
Certificates
• This section outlines the steps for installing the
development certificates.
• These certificates will only be useful for for
loopbackdevelopment/testing such as
internalSelfTests.
• Open a command window and change directories to:
– cd \NHINC\ThirdPartyTools\Metro1.4\copyv3_certs\copyv3
• Enter
– Ant
Source Code Installation Manual: 6.2.5 Setup Development Glassfish Certificates
17
Copyright 2009. All Rights Reserved.
Setup Development Glassfish
Certificates
• Verify that the first certificate was installed, enter:
– keytool -list -keystore
%AS_HOME%/domains/domain1/config/cacerts.jks -alias wssip storepass changeit
– keytool -list -keystore
%AS_HOME%/domains/domain1/config/keystore.jks -alias xwssecurity-server -storepass changeit
• Show install of Metro video
Source Code Installation Manual: 6.2.5 Setup Development Glassfish Certificates
18
Copyright 2009. All Rights Reserved.
Update Domain.xml
• Backup Files
– cd C:\GlassFishESB\glassfish\domains\domain1\config
– Backup domain.xml and cacerts.jks
• Edit domain.xml file
– Update the following memory options
<jvm-options>-Xmx1230m</jvm-options>
Note: there are two of
these in the file,
change both
<jvm-options>-XX:MaxPermSize=256m</jvm-options>
<jvm-options>-XX:PermSize=256m</jvm-options>
• ‘-’ may be lost if copied from document, and will cause
errors
Source Code Installation Manual: 6.2.6 Update Domain.xml
19
Copyright 2009. All Rights Reserved.
Update Domain.xml
• Add the following options immediately following the last
jvmoptions tag
–
<jvm-options>-Dcom.sun.xml.ws.transport.http.HttpAdapter.dump=true</jvm-options>
–
<jvm-options>-Dcom.sun.xml.ws.transport.http.client.HttpTransportPipe.dump=true</jvmoptions>
–
<jvm-options>-Djavax.enterprise.resource.xml.webservices.security.level=FINE</jvm-options>
–
<jvm-options>-Djavax.enterprise.resource.webservices.jaxws=FINE</jvm-options>
• Add the following options immediately following the last
jvmoptions tag to configure the log4j.properties
–
<jvm-options>Dlog4j.configuration=file:/C:/projects/NHINC/Current/Product/Production/Common/Properties/l
og4j.properties</jvm-options>
Source Code Installation Manual: 6.2.6 Update Domain.xml
20
Copyright 2009. All Rights Reserved.
Update Domain.xml
• Add the following options immediately following the last
jvmoptions tag to configure certificates for Metro
–
<!-- HTTP Upgrade to support 2 way SSL -->
–
<jvm-options>-Dcom.sun.jbi.httpbc.enableClientAuth=true</jvm-options>
–
<!-- For Development Signed CertSecurity -->
–
<jvm-options>-Djavax.net.ssl.keyStore=${com.sun.aas.instanceRoot}/config/keystore.jks</jvmoptions>
–
<jvm-options>-Djavax.net.ssl.keyStorePassword=changeit</jvm-options>
–
<jvm-options>-Djavax.net.ssl.trustStore=${com.sun.aas.instanceRoot}/config/cacerts.jks</jvmoptions>
–
<jvm-options>-Djavax.net.ssl.trustStorePassword=changeit</jvm-options>
–
<jvm-options>-DSERVER_KEY_ALIAS=xws-security-server</jvm-options>
–
<jvm-options>-DCLIENT_KEY_ALIAS=xws-security-client</jvm-options>
Source Code Installation Manual: 6.2.6 Update Domain.xml
21
Copyright 2009. All Rights Reserved.
Update Domain.xml
• WinMerge slide of changes to the memory parameters
Source Code Installation Manual: 6.2.6 Update Domain.xml
Update Domain.xml
• WinMerge slide of the new jvm-options tags
Source Code Installation Manual: 6.2.6 Update Domain.xml
Install Third Party Components into
Glassfish\LIB
• Copy all of the files that were unzipped to:
C:\NHINC\ThirdPartyComponents to
C:\GlassFishESB\glassfish\lib
Source Code Installation Manual: 6.2.7 Install Third Party Components into Glassfish\LIB
24
Copyright 2009. All Rights Reserved.
Starting Glassfish and log files
• To Start Glassfish start at the command line or from within
Netbeans
– C:\GlassFishESB\glassfish\bin>asadmin start-domain domain1
– In Netbeans Select the “Services” tab in the window on the upper-left
corner of the IDE. Click on the “plus” sign in front of the “Servers” icon.
Right-click on “Glassfish V2” and select “Start” from the menu
• The Glassfish server log file is located in
C:\GlassFishESB\glassfish\domains\domain1\logs\server.log
– If Glassfish was started, the server log should show:
[#|2009-11-02T19:27:05.343-0500|INFO|sunappserver2.1|javax.enterprise.system.core|_ThreadID=10;_ThreadName=mai
n;|Application server startup complete.|#]
25
Copyright 2009. All Rights Reserved.
Stopping Glassfish and log files
• To Stop Glassfish at the command line or from within
Netbeans
– C:\GlassFishESB\glassfish\bin>asadmin stop-domain domain1
– In Netbeans Select the “Services” tab in the window on the upper-left
corner of the IDE. Click on the “plus” sign in front of the “Servers” icon.
Right-click on “Glassfish V2” and select “Stop” from the menu
• The log file
– If Glassfish was stopped, the server log should show:
[#|2009-11-02T17:07:30.343-0500|INFO|sunappserver2.1|com.sun.jbi.framework|_ThreadID=22;_ThreadName=RMI TCP
Connection(11)-127.0.0.1;|JBIFW0042: JBI framework termination complete.|#]
•Show how to stop start glassfish video
26
Copyright 2009. All Rights Reserved.
Install MYSQL 5.1 Service
• The Gateway and the reference implementation of the
Adapter both use MySQL when a database is necessary.
• Run the MySQL installation program located at:
C:\NHINC\ThirdPartyTools\MySQL\mysql-5.1.37-win32.msi
– Accept the defaults
– Choose “Standard Configuration” for Database Configuration
– Current Root Password: leave blank
– New Root Password: NHIE-Gateway
• enter again to verify
– Installs MySQL as a windows service
– Make sure that the “Add to Path” check box is checked.
Source Code Installation Manual: 6.2.10 Install MYSQL 5.1
27
Copyright 2009. All Rights Reserved.
Install MYSQL 5.1 Service
• Randomly we have see a error on the mysql service install
“The wizard was interrupted before MySQL 5.1 could be
completely installed”
– The work around that we have found is to download and install the mysql5.1.39-win32.msi file
28
Source Code Installation Manual: 6.2.10 Install MYSQL 5.1
Copyright 2009. All Rights Reserved.
Install the MySQL GUI
• Install the MySQL GUI tools by running the setup program
located at:
– C:\NHINC\ThirdPartyTools\MySQL\GUITools\mysql-gui-tools=5.0-r12win32.msi.
– Accept all defaults.
• Run the MySQL Administrator and configure stored
connections
– Start->All Programs->MySQL->MySQL Administrator
– Click on the small dialog box containing three periods next to the “Stored
Connections”
Source Code Installation Manual: 6.2.10 Install MYSQL 5.1
29
Copyright 2009. All Rights Reserved.
Install the MySQL GUI
– On the Connections panel, enter the following values:
Connection: NHINConnect
Username: root
Password: NHIE-Gateway
Hostname: localhost
Port: 3306
Schema: test
– Select the “Apply” Button
– Select the stored connection and verify connection works
– Close MySQL Administrator tool
Source Code Installation Manual: 6.2.10 Install MYSQL 5.1
30
Copyright 2009. All Rights Reserved.
Create NHIN CONNECT Database
Schemas and Tables
• Create the schemas and users for the NHIN CONNECT
database
• Open a command window
– cd C:\NHINC\ThirdPartyTools\MySQL\DBScripts\nhincdb
• Enter
– mysql -uroot -pNHIE-Gateway < nhincdb.sql
• Follow along with the table in 6.2.11, step 2 for details on
what this sql script adds to the database
•Show how to stop start glassfish video
31
Source Code Installation Manual: 6.2.11
Create NHIN CONNECT Database Schemas and Tables
Copyright 2009. All Rights Reserved.
Install SoapUI
• Perform the following steps to install the free version of
SoapUI framework for testing.
• Open a command window and run
– C:\NHINC\ThirdPartyTools\SoapUI\SoapUI-2.5.1-installer.exe
– When prompted to choose the components to be installed –deselect the
JRE 1.6.0_10 option
•Show how install soapUI video
32
Source Code Installation Manual: 6.2.12 Install SoapUI
Copyright 2009. All Rights Reserved.
Compile NHIN CONNECT Source
• Verify that the server has a C:\temp directory. If it does not,
then create one.
• Open a command window and run
– Cd C:\projects\NHINC\Current\Product
• Enter
– ant > output.log
• On our machines this build takes about 30 minutes. However, this may take
up to 60 minutes or more.
• You can tail or view the output.log periodically to see if the build is processing
33
Source Code Installation Manual: 6.3 Compile NHIN CONNECT Source
Copyright 2009. All Rights Reserved.
Update Property/Configuration File
Settings
• The configuration properties are located in the directory
defined my the NHINC_PROPERTIES_DIR environment
variable, or the directory
C:\projects\NHINC\Current\Product\Production\Common\Properties
• For the initial testing (ValidateServices, and InternalSelfTests)
we will use the default HomeCommunityID(1.1), and
GatewayID (1.1).
• Edit the internalConnectionInfo_default.xml
– Change <Gateway-IP> and the <Adapter-IP> to localhost
– Backup the internalConnectionInfo.xml and copy the
internalConnectionInfo_default.xml over the internalConnectionInfo.xml
• Edit the gateway.properties – updates for external setting on
the UDDI endpoint -UDDIInquiryEndpointURL
34
Source Code Installation Manual: 6.4 Update Property/Configuration File Settings
Copyright 2009. All Rights Reserved.
Deploy NHIN CONNECT Components
• We will execute the deploy script
• Make sure that Glassfish is started
• Open a command window and run
– cd C:\projects\NHINC\Current\Product
• Enter
• ant deploy
• Show how to Compile source and Deploy video
35
Source Code Installation Manual: 6.5 Deploy NHIN CONNECT Components
Copyright 2009. All Rights Reserved.
CONNECT 2.2 Single Windows Install Windows
Installation Testing and Universal Client
Melissa Crenshaw, Rex Robinson
36
Copyright 2009. All Rights Reserved.
Windows Install Testing Outline
• Validate Services
– Validate Services Manuals
– Validate Services Testing Configuration
– Running Validate Services Tests
• Internal Self Tests
– Internal Self Tests Manuals
– Internal Self Tests Testing Configuration
– Running Internal Self Tests
• Outbound Self Tests
– Outbound Self Tests Manuals
– Updating SSL Certificates Cross-Gateway communication/Testing
– Outbound Self Tests Testing Configuration
– Update Property/Configuration File Settings
– Rerunning Validate Services and Internal Self Tests with the new
updates
– Running Outbound Self Tests
• Running Universal Client
Validate Services Manuals and Tests
• Download Links
– http://www.connectopensource.org/display/NHINR22/SoapUI+Tes
ts
– Validate Services Testing Document
• CONNECT_Release_2_2_SOAPUI_Validate_Services_Setup_Instruction
s_092709.pdf
– Validate Services Tests
• NHIN_CONNECT_Release_2_2_A020_Demonstration_Scripts_Validate_
Services_Windows_092709.zip
Testing Configuration
• Set memory parameters
– Edit soapui.bat in C:\ProgramFiles\eviware\soapUI.2.5.1\bin
• Originally: Xms128m and Xmx256m
• Change to: Xms384m and Xmx512m
• Select File Preferences and verify that the HTTP Version
is set to 1.1
– Also set the timeout option to 300000
– Click ‘OK’s
– Save the preferences via the file->save preferences
Testing: Validate Services
• Create directory
– Extract the
NHIN_CONNECT_Release_2_2_A020_Demonstration_Scripts_Valid
ate_Services_Windows_092709.zip into the C:\ directory
– Cd C:\Selftest\ValidateServices
– Edit the ValidateServices.properties
• Change all the occurrences of “<Gateway-HostName> to
localhost
• Change all the occurrences of “<Gateway-IP> to localhost
CONNECT SOAPUI Validate Services Setup Instructions
Testing: Validate Services
• Start up Glassfish
• Start soapUI
• Import the Validate Services SoapUI test
– File->Import Project
– Navigate to C:\SelfTest\ValidateServices
– Select the ValidateServices-soapui-project.xml
• Run the test per the instructions
• Show how run the Validate Services test video
CONNECT SOAPUI Validate Services Setup Instructions
41
Copyright 2009. All Rights Reserved.
Internal Self Tests Manuals and Tests
• Download Links
– http://www.connectopensource.org/display/NHINR22/SoapUI+Tes
ts
– Internal Self Tests
• NHIN_CONNECT_Release_2_2_A020_Demonstration_Scripts_Internal_
Self_Test_Windows_092709.zip
– Internal Self Tests Document
• CONNECT_Release_2_2_SOAPUI_Internal_Self_Test_Setup_Instructio
ns_092709.pdf
Testing: Inbound-Self-Test
• Extract Inbound-self-test files
– NHIN_CONNECT_Release_2_2_A020_Demonstration_Scripts_Internal_S
elf_Test_Windows_092709.zip
• Copy the mpi.xml file to
C:\GlassFishESB\glassfish\domains\domain1\config
• Copy the reidentification.xml file to
C:\projects\NHINC\Current\Product\Production\Common\Pro
perties
CONNECT SOAPUI Internal Self Test Setup Instructions Manual
43
Copyright 2009. All Rights Reserved.
Testing: Inbound-Self-Test
• Add documents to the reference implementation table
– Cd C:\SelfTest\InternalSelfTest
– mysql -uroot -pNHIE-Gateway -Ddocrepository < document.sql
• Copy mysql connector jar to the SoapUI directory
– Copy the “mysql-connector-java-5.1.8-bin.jar” file to the “ext” subdirectory
of the soapUI Installation Directory
(C:\ProgramFiles\eviware\soapUI.2.5.1\bin\ext)
– Restart SoapUI if it is currently running after this change
CONNECT SOAPUI Internal Self Test Setup Instructions Manual
44
Copyright 2009. All Rights Reserved.
Testing: Inbound-Self-Test
• Verify the testing setup items on slide 37 are complete
• Update the InternalSelfTest.properties
– Cd C:\Selftest\InternalSelfTest
– Replace all instances of “<Gateway-IP>” with localhost
– Make sure the has the NHINGatewayConfigDir is set correctly
(C:/projects/NHINC/Current/Product/Production/Common/Properties) and
uses forward slashes “/”
•
note “\” is an escape character.
– Verify/Update the MPIDir
• Run the test per the instructions
• Show how to run the Internal-Self-Tests video
CONNECT SOAPUI Internal Self Test Setup Instructions Manual
45
Copyright 2009. All Rights Reserved.
Outbound Self Tests Manuals and
Tests
• Download Links
– http://www.connectopensource.org/display/NHINR22/SoapUI+Tes
ts
– Outbound Self Tests
• NHIN_CONNECT_Release_2_2_A020_Demonstration_Scripts_Outboun
d_Self_Test_Windows_092709.zip
– Outbound Self Test Document
• CONNECT_Release_2_2_SOAPUI_Outbound_Self_Test_Setup_Instructi
ons_092709.pdf
Updating SSL Certificates CrossGateway communication/Testing
• The following sections references the Full Binary Installation
Manual Section “7.0 SSL CERTIFICATE REQUEST AND
INSTALLATION PROCESS”
– Stop Glassfish
– Backup the domain.xml and the cacerts.jks in the
C:/GlassFishESB/glassfish/domains/domain1/config directory
47
Full Binary Installation Manual :
7.0 SSL CERTIFICATE REQUEST AND INSTALLATION PROCESS
Copyright 2009. All Rights Reserved.
Updating SSL Certificates CrossGateway communication/Testing
• The following sections references the Full Binary Installation
Manual Section “7.0 SSL CERTIFICATE REQUEST AND
INSTALLATION PROCESS”
– Stop Glassfish
– Create a working directory to create the certificate request and change
directories to that new directory
– Create a new keystore
keytool -genkeypair -keyalg RSA -keysize 2048 -keystore gateway.jks -keypass changeit -storepass
changeit -validity 365 -alias gateway -dname "[email protected], cn=dnocc8325,
OU=Testing, O=Harris, L=Melbourne, S=FL, C=US"
– Make the necessary adjustments to the command identified in section 7.2
– This will create a new gateway.jks file in the current directory
48
Full Binary Installation Manual :
7.0 SSL CERTIFICATE REQUEST AND INSTALLATION PROCESS
Copyright 2009. All Rights Reserved.
Updating SSL Certificates CrossGateway communication/Testing
– Create a request for the certificate
keytool -certreq -alias gateway -sigalg SHA1withRSA -keystore gateway.jks storepass changeit -file NB2A7184.csr
– Make the necessary adjustments to the previous command as outlined in
section 7.2
– Download the Root Certificate, onc_ca.arm from the NHIN Certificate
Authority at http://ca.nhinteam.com/certificate?id=1
• See sections 7.3 for detailed instructions
– Upload the generated certificate request (*.csr) to the certificate authority
(currently, http://ca.nhinteam.com/submit.jsp ). you will be emailed when
the certificate is available
– Download the Certificate
• http://ca.nhinteam.com/listcerts.jsp
49
Full Binary Installation Manual :
7.0 SSL CERTIFICATE REQUEST AND INSTALLATION PROCESS
Copyright 2009. All Rights Reserved.
Updating SSL Certificates CrossGateway communication/Testing
• Install the Certificates
– Import the certificate authority certificate into the keystore
keytool -import -v -trustcacerts -alias onc_ca -file onc_ca.arm -keystore gateway.jks
– Import the server certificate into the keystore
keytool -import -v -alias gateway -file cert-162.pem -keystore gateway.jks
– Import the trusted root certificate into the trusted root authority store
keytool -import -v -trustcacerts -alias onc_ca -file onc_ca.arm -keystore
C:/GlassFishESB/glassfish/domains/domain1/config/cacerts.jks
– Make the necessary adjustments to the previous commands as outlined in
section 7.5
50
Full Binary Installation Manual :
7.0 SSL CERTIFICATE REQUEST AND INSTALLATION PROCESS
Copyright 2009. All Rights Reserved.
Updating SSL Certificates CrossGateway communication/Testing
– Validate the certificates were imported correctly by viewing the store
keytool -list -v -alias gateway -keystore gateway.jks
keytool -list -v -alias onc_ca -keystore gateway.jks
keytool -list -v -alias onc_ca -keystore
C:/GlassFishESB/glassfish/domains/domain1/config/cacerts.jks
– Copy the keystore (gateway.jks) to
C:/GlassFishESB/glassfish/domains/domain1/config
51
Full Binary Installation Manual :
7.0 SSL CERTIFICATE REQUEST AND INSTALLATION PROCESS
Copyright 2009. All Rights Reserved.
Updating SSL Certificates CrossGateway communication/Testing
• Open the domain configuration file for editing
– Update the domain configuration to point to the new keystore and supply
the password
– replace:
<jvm-options>Djavax.net.ssl.keyStore=${com.sun.aas.instanceRoot}/config/keystore.jks</jvm-options>
To
<jvm-options>-Djavax.net.ssl.keyStore=${com.sun.aas.instanceRoot}/config/gateway.jks</jvmoptions>
<jvm-options>-Djavax.net.ssl.keyStorePassword=xxxxxxxx</jvm-options>
52
Full Binary Installation Manual :
7.0 SSL CERTIFICATE REQUEST AND INSTALLATION PROCESS
Copyright 2009. All Rights Reserved.
Updating SSL Certificates CrossGateway communication/Testing
– replace all instances of "s1as" with the updated certificate alias
("gateway"). There should be 12 instances to change
– Enable 2-way SSL. This is done by adding the following:
– <jvm-options>-Dcom.sun.jbi.httpbc.enableClientAuth=true</jvm-options>
– In the jvm-options replace -DSERVER_KEY_ALIAS=xws-security-server to
-DSERVER_KEY_ALIAS=gateway
– In the jvm-options replace -DCLIENT_KEY_ALIAS=xws-security-client to DCLIENT_KEY_ALIAS=gateway
• Start the domain and to ensure all the changes are correct
CONNECT SOAPUI Outbound Self Test Setup Instructions
53
Copyright 2009. All Rights Reserved.
Testing: Outbound-Self-Test
• Extract Outbound-self-test files
• NHIN_CONNECT_Release_2_2_A020_Demonstration_Scripts_Outbound_Self_Te
st_Windows_092709.zip
• Mysql scripts for setting up the database, and the mpi.xml,
and reidentification.xml files are all the same as the internalSelf-Test, so they are not recopied.
CONNECT SOAPUI Outbound Self Test Setup Instructions
54
Copyright 2009. All Rights Reserved.
Update Property/Configuration File
Settings
• The following files will need to be updated for outbound
testing
– C:\projects\NHINC\Current\Product\Production\Common\Properties\adapte
r.properties
– C:\projects\NHINC\Current\Product\Production\Common\Properties\gatew
ay.properties
– C:\projects\NHINC\Current\Product\Production\Common\Properties\interna
lConnectionInfo.xml
– C:\GlassFishESB\glassfish\domains\domain1\config\mpi.xml
– C:\Selftest\OutboundSelfTest\OutboundSelfTest.properties
CONNECT SOAPUI Outbound Self Test Setup Instructions
55
Copyright 2009. All Rights Reserved.
Update Property/Configuration File
Settings
• The following files will need to be updated to keep the otherr
test working after the pervious changes
– C:\Selftest\InternalSelfTest\InternalSelfTest.properties
– C:\Selftest\ValidateServices\ValidateServices.properties
• gateway.properties
– Update localHomeCommunityId to your externally know OID
– localDeviceId to your externally know OID
CONNECT SOAPUI Outbound Self Test Setup Instructions
56
Copyright 2009. All Rights Reserved.
Update Property/Configuration File
Settings
• internalConnectionInfo.xml file
– Update the homeCommunityId 1.1. to the localHomeCommunityId in the
gateway.properties
– Add <internalConnectionInfo> segments with OIDs of the other gateways
you want to communicate with
– Add endpoints for the NHIC services
• To simplify the process you can just copy all them from a previous
<internalConnectionInfo> segments and make the necessary updates
• Note: normally this information will be provided by the UDDI server
CONNECT SOAPUI Outbound Self Test Setup Instructions
57
Copyright 2009. All Rights Reserved.
Update Property/Configuration File
Settings
• adapter.properties file
– Update assigningAuthorityId to localHomeCommunityId
– Update XDSbHomeCommunityId to localHomeCommunityId
– This will enable Universal client to work
• mpi.xml file
– Update to reflect the changes in the gateway.properties
localHomeCommunityId, ie update 1.1 to your localHomeCommunityId
• OutboundSelfTest.properties
– Update all the LocalHCID and LocalAA to the localHomeCommunityId of
the gateway.properties
– Set the RemoteHCID and the RemoteAA to the OID of the gateway you
want to test against. This should be in the internalConnectionInfo.xml
CONNECT SOAPUI Outbound Self Test Setup Instructions
58
Copyright 2009. All Rights Reserved.
Update Property/Configuration File
Settings
• InternalSelfTest.properties and ValidateServices.properties
– Update all the LocalHCID and LocalAA to the localHomeCommunityId of
the gateway.properties
CONNECT SOAPUI Outbound Self Test Setup Instructions
59
Copyright 2009. All Rights Reserved.
Testing: Outbound-Self-Test
• Start up Glassfish
• Start soapUI
• Import the Outbound Self Test SoapUI test
– File->Import Project
– Navigate to C:\Selftest\OutboundSelfTest
– Select the OutboundSelfTest-soapui-project.xml
• Run the test per the instructions
• Show how run the Outbound Self test video
CONNECT SOAPUI Outbound Self Test Setup Instructions
60
Copyright 2009. All Rights Reserved.
Running Universal Client
• Update Property/Configuration File Settings
– adapter.properties
• update the assigningAuthorityId with the same value as the
localHomeCommunityId in the gateway.properties
– Mpi.xml
• One of the “organizationId” in the “identifiers” section for the patient that is your search
criteria in the Universal Client application, needs to be the same as the
assigningAuthorityId define in the adater.properties
<void method="add">
<object class="gov.hhs.fha.nhinc.mpilib.Identifier">
<void property="id">
<string>D123401</string>
</void>
<void property="organizationId">
<string>1.1</string>
</void>
</object>
61
</void>
Copyright 2009. All Rights Reserved.
Questions?
Thank you for joining.
Copyright 2009. All Rights Reserved.